JNCIP-SEC: Juniper Networks Certified Professional – Security (2024) — Question 2

Your customer needs embedded security in an EVPN-VXLAN solution.
What are two benefits of adding an SRX Series device in this scenario? (Choose two.)

Answer options

• A. It enhances tunnel inspection for VXLAN encapsulated traffic with Layer 4-7 security services.
• B. It adds extra security with the capabilities of an enterprise grade firewall in the EVPN-VXLAN underlay.
• C. It adds extra security with the capabilities of an enterprise grade firewall in the EVPN-VXLAN overlay.
• D. It enhances tunnel inspection for VXLAN encapsulated traffic with only Layer 4 security services.

Correct answer: A, C

Explanation

Answer A is correct because it highlights the enhanced inspection capabilities for VXLAN traffic using advanced security services. Answer C is also correct as it indicates the added security that comes from the firewall's capabilities in the overlay. Answers B and D are incorrect because B focuses on the underlay, which is not the focus of the question, and D limits the security services to Layer 4, ignoring the broader Layer 4-7 capabilities.